Microsoft 365 Is Monitoring Your Hybrid Working. Here's Exactly What Your Employer Can See.

How Microsoft 365 monitors employees and how employers can see and understand the data.

Chris Gore | Updated 2026

Your boss doesn't need to install spyware on your laptop. They've already paid for it — and it came bundled with your Microsoft 365 licence. Most employees have never been told it's switched on. Most managers don't realise quite how much data they have access to. This post covers both sides of that conversation honestly.

We're going to walk through the seven built-in Microsoft 365 monitoring features that are almost certainly active in your organisation right now and what each one captures, what's genuinely visible, and where the line sits between useful data and surveillance creep.

The Dashboard Your Manager Can Open Right Now

Picture this. It's a Tuesday. You've had what feels like a solid morning, a few emails, some Teams calls, things moved forward. You close your laptop at 5:50pm feeling reasonably good about yourself.

Meanwhile, somewhere else in the business, your line manager, someone in IT, someone in HR, opens a single dashboard. On that dashboard is a neat breakdown of your entire working day:

•       How many Teams messages you sent

•       Which meetings you attended and for how long

•       Whether your camera was on

•       Whether you were an active participant or just a warm body in the waiting room

•       How many files you edited in SharePoint

•       Whether you went dark for two-hour stretches

•       Whether you sent emails at 11pm

They didn't request a special report. They didn't need to flag it with IT. They just opened a tab. That is Microsoft 365. And most of what follows comes completely as standard.

The 7 Microsoft 365 Monitoring Tools — What Each One Does

1. Microsoft 365 Productivity Score

This is the one that caused the biggest controversy when it launched. The Productivity Score is a built-in admin dashboard giving IT and senior leadership a detailed breakdown of how employees are using Microsoft 365, email activity, Teams participation, SharePoint and OneDrive collaboration, mobile vs desktop usage. When it launched, it showed individual-level data like your name, your score. Privacy advocates called it surveillance dressed up as productivity. Microsoft responded by rolling up data into anonymised company-wide stats.

But here's the part most people miss: enterprise admins can still pull individual-level data through other reporting tools inside the Microsoft ecosystem. The name came off the leaderboard. The data didn't go anywhere.

2. Teams Activity Reports

This lives in the Teams Admin Center and is probably the most commonly used monitoring tool in any Microsoft shop. Admins can pull a report for any user, over any time period, showing: chat messages sent, calls made, meetings joined, whether audio or video was on, how long meetings lasted, and how long the user was actually present.

For a manager building a performance case, this is useful data. Someone's been in three meetings this week, camera off every time, sent zero messages, left early. That's all in the report, timestamped.

3. Viva Insights

Microsoft sells Viva Insights as a wellbeing tool. For individual users, the personal version genuinely is — it nudges you to take breaks, block focus time, avoid emails at 11pm. But the manager and leader dashboards tell a different story.

Those views aggregate data across Microsoft 365, emails, meetings, chats, calendars, and surface patterns about your team: who's working outside contracted hours, who's back-to-back in meetings all day, who isn't connecting with the wider organisation, who's collaborating with whom. Technically anonymised at the individual level, but if you're a team of four and the data says someone is sending emails at midnight every night, you don't need to be a detective.

4. Microsoft Purview / eDiscovery — The Nuclear Option

This one doesn't get used often, but when it does, it's comprehensive. The Microsoft Purview compliance centre gives organisations the ability to run content searches across the entire Microsoft 365 ecosystem, emails, Teams messages, SharePoint files, OneDrive documents, calendar entries. Everything.

An admin can run a query: every message containing a specific word, sent by a specific person, over a specific date range. Within minutes, a full report. Every message, every attachment, every version.

Deleted doesn't mean gone. In Microsoft 365, deletion moves content to a retention archive where it sits until the retention policy expires. If there's a legal dispute, an HR investigation, or a regulatory inquiry, eDiscovery gets triggered and everything becomes searchable, including the messages you deleted six months ago.

5. OneDrive and SharePoint Version History

Every document you open, every edit you make, every file you share, move, or delete, all of it is logged with timestamps and user attribution. An IT admin can access any employee's OneDrive files directly without the employee knowing. The most common reason is offboarding, but the capability exists at all times.

Every time you save a file, a new version is created. If you worked on a document for an hour and deleted everything you wrote, the previous version still exists in the history. That's genuinely useful when documents get corrupted. It also means there's a complete audit trail of everything you've done inside any shared document.

6. Microsoft Copilot — The New Layer

This is the most significant recent shift. Copilot is Microsoft's AI assistant, deeply integrated into Microsoft 365. For individual users, it's a productivity tool. Summarise this email. Draft this response. Useful, practical.

For managers, Copilot opens something new. A manager can now open Copilot and ask: "What has [team member] been working on this week?" or "What are the latest conversations in our shared channels?" And Copilot will answer, pulling from public Teams channels, shared files, emails, anything the manager legitimately has access to. It gives back a readable summary in plain English.

Previously, accessing this information required knowing where to look and how to pull a report. Now the barrier to monitoring has dropped to near zero, it's as easy as having a conversation.

7. Microsoft Defender for Endpoint

This one tends to live in larger enterprises and regulated industries, but it's worth knowing about. Defender for Endpoint monitors managed devices across the organisation — application usage, web activity, login times, and flags unusual behaviour. Your IT security team uses it primarily to detect threats and compromised accounts, but the data it collects is comprehensive.

If you're on a company-managed laptop and assume the websites you visit during the day are private, they're not. The logs exist.

Watch: The Full Walkthrough of All 7 Tools

Before drawing any conclusions, watch the full video. We walk through each tool in detail and what's actually visible, what requires special access, and the honest conversation about where the line sits between useful data and overreach.

What This Means — For Employees and For Managers

If You're an Employee

1. Find out what your company's monitoring policy actually says. Under UK GDPR, organisations are legally required to tell employees what data is collected and why. It should be in your employee handbook or contract. If it's not, request it.

2. Keep personal activity on personal devices. Don't log into personal accounts on company platforms unless you have to, and if you do, understand that in a legal situation, company platforms used for personal communication can be discoverable.

3. Don't waste energy gaming the metrics. The realistic risk isn't someone watching your activity every day. It's data being pulled retrospectively when you're already under scrutiny. If your work output is solid and your behaviour is professional, the dashboard isn't your problem.

If You Manage a Team

Just because you can access all of this data doesn't mean you should. The temptation, especially with remote teams, is to use activity metrics as a proxy for performance. Message count. Meeting attendance. Time online. It's all there, it's all measurable, so it must mean something.

It doesn't. Not directly. Someone sending 200 Teams messages a day and delivering nothing useful is still delivering nothing useful. Someone sending ten messages a day who hits every deadline and every budget isn't a problem just because their activity score looks quiet.

Use the data as a diagnostic tool to spot someone who might be struggling, troubleshoot technical problems, or build a documented performance case where one is genuinely warranted. Don't use it as a scoreboard. And if your organisation is relying on Microsoft 365 data to understand whether people are performing, you've got a management problem, not a dashboard problem.

When the Technology Itself Goes Wrong

Managing data about how your team works is one thing. Managing the technology your team depends on is another. Because while all of this monitoring data sits quietly in the background, it's a very different kind of problem when a camera fails at 9:58am for a 10:00am call.

That's why we built SPORTrack. It's our remote monitoring and management platform, giving you live visibility of every device, in every room, anywhere in the world. Issues are identified and resolved before they land on your desk as a 10am panic call. 

Frequently Asked Questions

Can my employer read my private Teams messages?

Under normal circumstances, no — your manager cannot read private Teams chats day-to-day. However, if a legal dispute, HR investigation, or regulatory inquiry arises, Microsoft Purview eDiscovery can make all content searchable — including private messages and deleted items within the retention period. The practical rule: if you wouldn't want a lawyer reading it in a courtroom, don't type it on a company platform.

Is Microsoft 365 employee monitoring legal in the UK?

Yes, provided organisations comply with UK GDPR. Employers must have a lawful basis for monitoring, inform employees through a privacy notice or employee handbook, and ensure monitoring is proportionate and necessary. Simply having the capability does not automatically create the legal right to use it.

What does Microsoft Viva Insights actually show managers?

Manager dashboards in Viva Insights show aggregated team data — patterns like who is working outside contracted hours, who has back-to-back meetings, who has limited focus time, and collaboration trends. Personal insights remain private to the individual employee. However, in small teams, aggregated patterns can make individual behaviour identifiable.

Does deleting a Teams message or email make it gone permanently?

No. In Microsoft 365, deletion moves content to a retention archive. It remains accessible to administrators and is discoverable via eDiscovery until the organisation's retention policy expires. The retention period varies by organisation and licence tier.

Can my employer see which websites I visit on my work laptop?

Yes, if Microsoft Defender for Endpoint is deployed on your device. It logs application usage and web activity on company-managed devices. This data is primarily used by IT security teams to detect threats, but the logs exist and can be accessed by those with the appropriate permissions.

What should organisations do before enabling monitoring features?

Organisations should: review their legal basis under UK GDPR, conduct a Data Protection Impact Assessment (DPIA) where required, update employee privacy notices, consult with a Data Protection Officer if applicable, and establish clear policies on how monitoring data will and won't be used.

Related Posts

•      How to Set Up a Microsoft Teams Room for Under £5,000

•     Why Your Meeting Room AV Budget Is Probably Wrong

External links used in this post:

•       ICO / GDPR Local: GDPR Employee Monitoring — Compliance Considerations — authoritative UK GDPR guidance on lawful basis for monitoring

•       Microsoft Learn: Introduction to Viva Insights — official Microsoft documentation on Viva Insights features and privacy model